Network Intrusion Simulation Using OPNET
Network intrusion detection and network security are important issues faced by the IT industry. Hackers apply an array of techniques to cause disruption of normal system operations, but on the defense, the firewalls and practical intrusion detection systems (IDS) nowadays are only effective in defending known intrusions using their signatures, and far less than mature when faced with novel attacks. Our work deals with simulation of intrusion traffic by explicitly generating data packets based on real-life TCPDUMP data that contain intrusion packets. The explicitly generated traffic in OPNET simulation allows research on data filtering and intrusion detection strategies. In this paper we report experimental studies of simulation efficiency and network performance of simulated networks using a firewall to capture Denial-of-Service (DOS) attacks.